$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/B3DED5C6BAC911EB8533B615C4F9AE02.roa File: B3DED5C6BAC911EB8533B615C4F9AE02.roa (raw, json) Hash identifier: DsgHJydaVuiP2/JOiaGz7+8hzbblvMVmJcBWMtJLoOw= Subject key identifier: 6C:D9:9A:AE:94:07:C6:17:59:37:2D:52:D4:F7:C9:EA:3A:4D:28:12 Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 05D0 Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/B3DED5C6BAC911EB8533B615C4F9AE02.roa Signing time: Sun 04 May 2025 23:04:00 +0000 ROA not before: Sun 04 May 2025 23:04:00 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 131447 IP address blocks: 103.7.56.0/22 maxlen: 23 150.107.28.0/22 maxlen: 22 150.107.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1488 (0x5d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95, serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: May 4 23:04:00 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6817f260-bf6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:dc:bd:07:08:06:fa:64:72:e4:c0:60:38:34: da:c5:5f:61:49:75:a8:86:53:1e:56:c2:ad:94:1d: f1:68:1a:2a:0c:5b:26:86:84:8f:e0:27:0e:ff:ae: 13:fe:1c:0b:e8:90:8e:a7:99:fc:cf:62:73:fd:d3: 44:ca:70:fe:3d:61:f4:63:84:e3:38:62:0d:db:0e: b1:83:f1:80:5a:04:0b:a7:80:26:3a:06:5a:1b:d8: 39:58:7b:4f:91:64:a8:79:0d:81:63:bf:05:14:e0: 9d:a3:f7:20:89:cd:ea:44:1e:a0:14:80:3a:a4:da: b0:d3:35:8c:f2:8b:21:74:39:1a:d4:81:73:1b:2b: e5:be:9e:ab:22:de:f2:9e:ad:3a:46:66:bd:05:a1: c0:ad:6d:5e:45:a6:2c:88:d0:60:b6:b4:ce:9c:b1: d4:57:9f:f5:cc:fb:f6:ff:5e:3a:43:5e:75:c5:d9: 35:93:14:3d:58:eb:d9:86:4d:f3:b5:15:03:29:d9: e8:7c:7f:c5:af:60:4d:03:ff:32:2b:7f:98:3b:7a: 1e:b1:9e:42:82:76:ad:35:46:c1:7b:dc:5a:ab:99: 80:c0:d5:11:c5:89:c6:bb:de:ef:75:3a:92:85:f4: c3:e0:a9:fe:1c:ea:6b:f2:82:06:1f:d0:11:8c:5a: 4c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:D9:9A:AE:94:07:C6:17:59:37:2D:52:D4:F7:C9:EA:3A:4D:28:12 X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/B3DED5C6BAC911EB8533B615C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.56.0/22 150.107.28.0/22 Signature Algorithm: sha256WithRSAEncryption b5:b3:05:06:29:6d:c9:82:b0:17:fa:fe:b6:9d:c1:ef:da:db: f9:b8:b7:37:a7:7b:1a:1f:f1:10:59:c3:95:c1:3f:e8:69:a3: 5d:07:70:6a:9d:be:d6:cf:7f:e0:d7:32:cf:a0:e7:07:ae:e9: fa:85:9e:eb:13:c5:5a:a5:ab:90:9e:86:ca:bc:db:a5:f6:f4: c0:6e:2b:18:a3:06:fe:28:fe:85:31:cd:2b:2f:61:63:2c:55: a0:5c:aa:90:fd:1c:12:a6:6e:df:d1:09:54:71:1c:32:9a:a2: 8c:72:d4:51:cb:d0:dd:d1:97:03:dd:ae:af:4d:36:f6:64:06: 33:b1:0d:1f:6b:3e:cb:71:5a:fc:3f:78:29:fb:14:55:5e:38: 23:f6:2c:0d:d5:62:2f:94:3a:70:fc:c4:60:e7:08:77:38:ae: 9e:be:7a:1f:20:0a:c8:71:1d:09:7e:da:e8:8a:c3:91:30:f3: 3a:f3:80:73:de:d7:b8:54:89:93:cf:25:a7:1b:cb:1a:69:c2: 74:7b:0f:9a:57:c3:f5:68:9e:d8:3a:00:04:bb:d3:ab:fb:ac: 5d:e0:d2:eb:4a:39:58:a8:b4:8e:a2:7e:d2:06:2c:f2:3b:ea: 37:e1:a0:74:08:bf:c2:a1:90:f6:4a:69:4a:cf:d0:db:9e:b5: 15:03:d9:88 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjUwNTA0MjMwNDAwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE3ZjI2MC1iZjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9y9BwgG+mRy5MBgODTaxV9hSXWohlMeVsKtlB3xaBoqDFsmhoSP4CcO/64T /hwL6JCOp5n8z2Jz/dNEynD+PWH0Y4TjOGIN2w6xg/GAWgQLp4AmOgZaG9g5WHtP kWSoeQ2BY78FFOCdo/cgic3qRB6gFIA6pNqw0zWM8oshdDka1IFzGyvlvp6rIt7y nq06Rma9BaHArW1eRaYsiNBgtrTOnLHUV5/1zPv2/146Q151xdk1kxQ9WOvZhk3z tRUDKdnofH/Fr2BNA/8yK3+YO3oesZ5CgnatNUbBe9xaq5mAwNURxYnGu97vdTqS hfTD4Kn+HOpr8oIGH9ARjFpMjwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGzZmq6U B8YXWTctUtT3yeo6TSgSMB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjBDOTUvREUyRkYxRjRCQUM3MTFFQkFGMkU2ODEzQzRGOUFFMDIvQjNERUQ1QzZC QUM5MTFFQjg1MzNCNjE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnBzgDBAKWaxwwDQYJKoZIhvcNAQELBQADggEBALWzBQYp bcmCsBf6/radwe/a2/m4tzenexof8RBZw5XBP+hpo10HcGqdvtbPf+DXMs+g5weu 6fqFnusTxVqlq5Cehsq826X29MBuKxijBv4o/oUxzSsvYWMsVaBcqpD9HBKmbt/R CVRxHDKaooxy1FHL0N3RlwPdrq9NNvZkBjOxDR9rPstxWvw/eCn7FFVeOCP2LA3V Yi+UOnD8xGDnCHc4rp6+eh8gCshxHQl+2uiKw5Ew8zrzgHPe17hUiZPPJacbyxpp wnR7D5pXw/Vontg6AAS706v7rF3g0utKOViotI6iftIGLPI76jfhoHQIv8KhkPZK aUrP0NuetRUD2Yg= -----END CERTIFICATE-----Generated at Wed May 14 16:20:59 2025 by rpki-client